voukpaw's repositories
BackupOperatorToolkit
The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
gitleaks
Protect and discover secrets using Gitleaks 🔑
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
legion
Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.
ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
linikatz
linikatz is a tool to attack AD on UNIX
LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
mcafee-sitelist-pwd-decryption
Password decryption tool for the McAfee SiteList.xml file
nginxpwner
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
ocd-mindmaps
Orange Cyberdefense mindmaps
oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
OSINT-Framework
OSINT Framework
OSINTsources
This is a repo containing several osint sources
OWASSRF-CVE-2022-41082-POC
PoC for the CVE-2022-41080 , CVE-2022-41082 and CVE-2022-41076 Vulnerabilities Affecting Microsoft Exchange Servers
PRET
Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
PyFuscation
Obfuscate powershell scripts by replacing Function names, Variables and Parameters.
RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
Seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
shcheck
A basic tool to check security headers of a website
text4shell-exploit
CVE-2022-42889 - Text4Shell exploit
TortugaToolKit
Collection of some of my own tools with other great open source tools out there packaged into a powershell module
UAC-bypass
Windows Privilege Escalation
unredacter
Never ever ever use pixelation as a redaction technique
updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
uploadserver
Python's http.server extended to include a file upload page
Veil
Veil 3.1.X (Check version info in Veil at runtime)
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
wssocks
socks5 over websocket